search

token454 / pwm

Automatically exported from code.google.com/p/pwm
0 stars 0 forks source link

Activate an user in 1.7.0 #485

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago 
What steps will reproduce the problem?
1. Activate an user 
2.
3.

What is the expected output? What do you see instead?

We expect the user to get activated.
Instead the website give us the error:

-----------------------------------------
 , operations.UserAuthenticator, {24} user cn=P123456,ou=users,ou=XXXX,o=XXXX password has been set to random value for pwm to use for user authentication [123.123.123.12]
2013-09-18 16:00:01, INFO , operations.UserAuthenticator, {24} login attempt 
for cn=P123456,ou=users,ou=XXXX,o=XXXX failed: 5001 ERROR_WRONGPASSWORD (ldap 
error during password check: unable to create connection: unable to bind to 
ldaps://edirserver:636 as cn=P123456,ou=users,ou=XXX,o=XXXX reason: [LDAP: 
error code 53 - NDS error: log account expired (-220)]) [112.123.123.123l]
2013-09-18 16:00:03, ERROR, operations.UserAuthenticator, unable to 
authenticate user with temporary password, check proxy rights, ldap logs, and 
ensure ldap.namingAttribute setting is correct
2013-09-18 16:00:03, ERROR, servlet.TopServlet, {24} pwm error during page 
generation: 5026 ERROR_BAD_SESSION_PASSWORD (unable to authenticate user with 
temporary password, check proxy rights, ldap logs, and ensure 
ldap.namingAttribute setting is correct) [123.123.123.12/]
-----------------------------------------

When checking the ldap/eDirectory trace we see: 
-----------------------------------------
523667216 LDAP: [2013/09/19 16:37:11.392] (123.123.123.12:47680)(0x0001:0x60) 
Bind name:cn=P123456,ou=users,ou=diy,o=asds, version:3, authentication:simple
523667216 LDAP: [2013/09/19 16:37:14.407] (123.123.123.12:47680)(0x0001:0x60) 
Failed to authenticate local on connection 0x621c00, err = log account expired 
(-220)
523667216 LDAP: [2013/09/19 16:37:14.407] (123.123.123.12:47680)(0x0001:0x60) 
Sending operation result 53:"":"NDS error: log account expired (-220)" to 
connection 0x621c00
-----------------------------------------

when using the version 1.6.4 we see the account gets enabled, we don't see this 
in 1.7.0.

What version of PWM are you using?

- v1.7.0 -
Version CAUTION This version of PWM is out of date. The current version is 
v1.7.0 (b1229). Check the PWM project page for more information. 
downloaded from the website.

What ldap directory and version are you using?

eDirectory 8.8.7

Please paste any error log messages below:

Original issue reported on code.google.com by niels.id...@gmail.com on 20 Sep 2013 at 10:04

Attachments:

GoogleCodeExporter commented 8 years ago 
Issue 486 has been merged into this issue.

Original comment by menno.pi...@gmail.com on 21 Sep 2013 at 8:15

GoogleCodeExporter commented 8 years ago 
This issue can be closed.
1.6.4 a user can be disbaled, in 1.7.0 it needs to be enabled, with no 
logintime.

Original comment by niels.id...@gmail.com on 23 Oct 2013 at 4:18

GoogleCodeExporter commented 8 years ago 
Thanks

Original comment by menno.pi...@gmail.com on 23 Oct 2013 at 4:41